pezkuwichain/pezkuwi-telegram-miniapp
1
0
Fork 0
mirror of https://github.com/pezkuwichain/pezkuwi-telegram-miniapp.git synced 2026-04-22 03:07:55 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
7c02b8dd83aead663499cfad14abd179546a85fd
pezkuwi-telegram-miniapp/supabase
T
History
pezkuwichain 7c02b8dd83 security: harden telegram-auth Edge Function 
- Remove insecure from_miniapp auth method (telegram_id spoofing vulnerability)
- Implement HMAC-SHA256 signed session tokens (replace weak Base64 encoding)
- Reduce token expiry from 7 days to 24 hours
- Restrict CORS to production domains only (telegram.pezkuwichain.io, t.me)
- Add detailed debug logging for troubleshooting
2026-02-06 04:06:49 +03:00
..
functions
security: harden telegram-auth Edge Function
2026-02-06 04:06:49 +03:00
migrations
fix: revert edge function, add RLS policies
2026-02-05 16:02:30 +03:00
seed-admin-post.sql
Initial commit - PezkuwiChain Telegram MiniApp
2026-02-05 10:53:13 +03:00